RedLineStealer botnet controller @145.239.32.179

The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.

Malware botnet controller located at 145.239.32.179 on port 27763 TCP:
$ telnet 145.239.32.179 27763
Trying 145.239.32.179…
Connected to 145.239.32.179.
Escape character is ‘^]’

Referencing malware samples (MD5 hash):
267a7993a596998743aba38299531ff0 — AV detection: 43 / 68 (63.24%)
51059f0b8dea23a1d153ae103abd2e50 — AV detection: 28 / 66 (42.42%)
a69fd26cb9d1bc4955ed27b20107e29f — AV detection: 30 / 68 (44.12%)

Опубликовано
В рубрике ovh.net

Добавить комментарий

Ваш адрес email не будет опубликован.